SAP Security and Onapsis Engineer
Skills
About This Role
Overview
We are seeking a Resident Engineer with strong expertise in Onapsis Control for Code,
SAP ABAP / HANA development, and SAST (Static Application Security Testing)
practices.
This role focuses on ensuring secure and compliant SAP development by leveraging
Static Application Security Testing SAST principles, performing vulnerability analysis
and collaboration with development teams to remediate findings and optimize code
quality.
Ideal candidate will ensure secure and compliant SAP development by
performing code vulnerability scans, validating results, eliminating false positives, and
guiding developers in secure coding standards.
****Candidate must relocate to Saudi Arabia
Key Responsibilities
- Manage and maintain Onapsis Control for Code (ABAP, HANA) and Onapsis Assess
- platforms.
- Perform and interpret SAST scans for SAP custom code to identify security and
- compliance issues.
- Perform vulnerability scans using Onapsis Assess
- Validate scan findings and effectively distinguish between true positives and false
- positives.
- Collaborate with development teams to remediate vulnerabilities and enhance code
- security.
- Integrate Onapsis tools with SAP systems, CI/CD pipelines, and enterprise reporting
- platforms.
- Generate detailed reports and dashboards for security posture and audit reviews.
- Support code review processes, secure transport management, and patch validation
- activities.
- Work closely with Onapsis support for troubleshooting, version upgrades, and
- optimization.
- Conduct periodic tool health checks, documentation updates, and knowledge transfer
- sessions.
Required Skills and Experience
- 4–7 years of experience in the SAP ecosystem (ABAP development, Basis).
- Strong working knowledge of SAST principles and tools (Onapsis Control preferred).
- Hands-on experience with ABAP and HANA development, including secure codingpractices.
- **Proven ability to analyze scan results and accurately identify false positives.**
- Familiarity with SAP transport management, custom code lifecycle, TMS, OCC and
- change control processes.
- **Understanding of SAP GRC / Access Control and HANA security concepts.**
- Excellent analytical, communication, and stakeholder management skills.
- Preferred Qualifications
- **Certification or formal training in Onapsis, SAP Security, Vulnerability Management or**
- Application Security.
- Exposure to CI/CD tool integrations and DevSecOps processes.
- **Knowledge of CWE/CVE standards and compliance frameworks.**
- Experience in S/4HANA or SAP Cloud environments.
- Soft Skills
- **Strong attention to detail with a proactive, security-focused mindset.**
- Ability to communicate technical findings to diverse stakeholders.
- **Collaborative and solution-oriented approach.**
- Self-motivated, organized, and process driven.
Job Types: Full-time, Permanent
Pay: ﷼1.00 per month
Application Question(s)
- Can you relocate to Saudi Arabia?
Experience
- SAP Security&onapsis: 6 years (Preferred)
Location
- Riyadh (Preferred)
Your resume, rewritten
for this exact role.
Sign up free — Base Career tailors your CV to this job description in 60 seconds.
01 / 05
Resume Tailored to This Job
Your keywords, structure, and story — rewritten to match this exact role and pass ATS filters.
Free · No card · 60 seconds
02 / 05
Cover Letter for This Role, Done
Job-specific cover letters written in Gulf professional tone — ready in seconds, not hours.
Free · No card · 60 seconds
03 / 05
See How Well You Fit This Role
AI match score with clear reasons — know your fit before investing time in the application.
Free · No card · 60 seconds
04 / 05
Apply in One Click
Autofill any application form on Workday, LinkedIn, Bayt, Greenhouse — with your tailored content.
Free · No card · 60 seconds
05 / 05
Track It. Follow Up at the Right Time.
Visual pipeline for every application with AI-timed follow-up reminders so nothing slips.
Free · No card · 60 seconds
Similar Jobs
SAP Security & GRC Architect /Manager / Lead
FUZIXEL TECHNOLOGIES PRIVATE LIMITED · Riyadh
Tips: Provide a summary of the role, what success in the position looks like, and how this role fits into the organization overall. Responsibilities Position Summary Experienced SAP Security & GRC professional with over
Skills
Yesterday
Apply Now↗Apply Now ↗SAP Security & GRC Consultant (S/4HANA & Fiori)
Client of YALLO Retail · Riyadh
Seeking an experienced consultant for SAP Security and GRC with expertise in S/4HANA, Fiori, role redesign, and compliance management.
Skills
1 weeks ago
Apply Now↗Apply Now ↗SAP Security & GRC Consultant (S/4HANA & Fiori) || Saudi Arabia (Only local) || 7+ Years
Cognitud · Riyadh
About the job Domain: IT Services & Consulting Position: SAP Security & GRC Consultant (S/4HANA & Fiori) Experience: 7+ Years Location: Riyadh, Saudi Arabia Your Team You are invited to work with a top-tier organization
Skills
1 weeks ago
Apply Now↗Apply Now ↗2.2K+
Cover Letters & Follow-ups
1.8K+
Resumes Tailored
190.5K+
Jobs Tracked
Trusted by professionals at
Stop applying blindly.
Start getting hired.
Base Career automates the hardest parts of job searching — apply smarter, not harder.
AI Resume in 60s
Your resume rewritten for this exact role using the job description as the brief.
ATS-Optimized
Get past automated screening filters with the right keywords matched to each job.
Application Tracker
Track every job, follow-up, and interview in one visual kanban board.
Free plan · No credit card required